f:\jnks\workspace\K29_Production_Build\build4647\SxS\src\Release\HP-DQEX5.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-04-27_77ece9eda14383e64ffe0556a5c3d8fd_magniber.exe
Resource
win7-20240221-en
windows7-x64
2 signatures
150 seconds
General
-
Target
2024-04-27_77ece9eda14383e64ffe0556a5c3d8fd_magniber
-
Size
33.9MB
-
MD5
77ece9eda14383e64ffe0556a5c3d8fd
-
SHA1
fcda2da05d27377f7dcd96de981126f92f715ad0
-
SHA256
48019c6ad4767d44d9e3156f2c402b8d31b6b49dab2266cd477c06ac5730b8bd
-
SHA512
71c858563aeb571db3eb90436f2f7935f9c35c09a650d97e4a9e2504386d3f140e23732dcdcf51bf9a8b77a448c17ba1e933f9f190605fdc9690f72b6220ab94
-
SSDEEP
98304:+MyxwpTT8d1vroblVN62GZB9th8Rc4yrrFxsnX98dXwV5Wv9a/Sa6OPUGsyHrU+B:+MyAOyVNSZyc4yrSbrOe3utXIeVQBWG
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2024-04-27_77ece9eda14383e64ffe0556a5c3d8fd_magniber
Files
-
2024-04-27_77ece9eda14383e64ffe0556a5c3d8fd_magniber.exe windows:5 windows x86 arch:x86
073578a3810f62cb2159d25d2ea73d17
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
GetThreadLocale
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
SetThreadPriority
ResumeThread
GetPrivateProfileIntW
WritePrivateProfileStringW
CompareStringW
GlobalFlags
lstrcpyW
GlobalGetAtomNameW
VirtualProtect
EncodePointer
SystemTimeToFileTime
FileTimeToLocalFileTime
SystemTimeToTzSpecificLocalTime
VerSetConditionMask
GetProfileIntW
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetSystemTimeAsFileTime
InitializeSListHead
GetStringTypeW
LCMapStringW
GetCPInfo
DebugBreak
SetDllDirectoryW
InterlockedDecrement
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetCommandLineA
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
SetStdHandle
GetFileType
ExitProcess
GetStdHandle
GetACP
GetDateFormatW
GetTimeFormatW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
WriteConsoleW
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SwitchToThread
SignalObjectAndWait
ReleaseSemaphore
SetHandleInformation
LocalSize
lstrlenW
WritePrivateProfileStringA
GetPrivateProfileStringA
RemoveDirectoryW
GetGeoInfoW
InterlockedExchange
OutputDebugStringA
SetErrorMode
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetCurrentThread
GetSystemDefaultLangID
IsWow64Process
GetModuleHandleW
GetPrivateProfileStringW
GetWindowsDirectoryW
FormatMessageW
SearchPathW
GetLongPathNameW
OutputDebugStringW
SetFilePointer
ExpandEnvironmentStringsW
QueryPerformanceFrequency
QueryPerformanceCounter
VerifyVersionInfoW
SetFileAttributesW
CopyFileW
MoveFileExW
GetSystemDirectoryW
DeviceIoControl
GetFileTime
SizeofResource
LockResource
LoadResource
FindResourceExW
FindResourceW
GlobalFree
GlobalUnlock
GetCurrentProcessId
GlobalLock
ProcessIdToSessionId
GlobalAlloc
LocalFree
LocalAlloc
Sleep
GetUserDefaultLangID
SetCurrentDirectoryW
GetCurrentDirectoryW
GetComputerNameExW
WriteFile
WideCharToMultiByte
MultiByteToWideChar
GetTempFileNameW
DeleteFileW
FindClose
FindNextFileW
FindFirstFileW
GetLocaleInfoW
GetUserDefaultLCID
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetSystemDefaultLCID
UnmapViewOfFile
FlushViewOfFile
MapViewOfFile
CreateFileMappingW
OpenFileMappingW
GlobalMemoryStatusEx
GetStartupInfoW
CreatePipe
WaitForMultipleObjects
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetEnvironmentVariableW
PeekNamedPipe
WaitNamedPipeW
DisconnectNamedPipe
ConnectNamedPipe
CreateNamedPipeW
OpenProcess
CreateFileW
GetFileSizeEx
GetShortPathNameW
GetCommandLineW
CreateDirectoryW
ReleaseMutex
OpenMutexW
CreateMutexW
GetFileAttributesExW
GetFileAttributesW
SetLastError
GetSystemTime
GetLocalTime
WaitForSingleObject
SetEvent
ResetEvent
OpenEventW
CreateEventW
TerminateThread
GetCurrentProcess
GetExitCodeProcess
GetExitCodeThread
CreateThread
GetDiskFreeSpaceExW
GetTempPathW
GetTickCount
CloseHandle
CreateProcessW
GetCurrentThreadId
GetVersionExW
GetModuleFileNameW
GetProcAddress
FreeLibrary
LoadLibraryW
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
GetThreadTimes
VirtualFree
InterlockedPopEntrySList
QueryDepthSList
UnregisterWaitEx
CreateTimerQueue
DuplicateHandle
UnlockFile
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
MulDiv
GlobalSize
GlobalAddAtomW
GlobalFindAtomW
LoadLibraryA
FreeResource
lstrcmpiW
GetModuleHandleA
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
InterlockedIncrement
lstrcatW
GetFileInformationByHandle
FileTimeToDosDateTime
FormatMessageA
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapFree
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionAndSpinCount
FileTimeToSystemTime
user32
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetDesktopWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
MapWindowPoints
ScreenToClient
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
GetDlgItem
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
IsChild
IsMenu
IsWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
GetParent
OffsetRect
SetRectEmpty
SendDlgItemMessageA
PostQuitMessage
RedrawWindow
KillTimer
GetMenuStringW
GetMenuState
InsertMenuW
AppendMenuW
RemoveMenu
GetKeyNameTextW
MapVirtualKeyW
ReleaseDC
LoadMenuW
CharUpperW
GetSystemMetrics
GetCursorPos
WindowFromPoint
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
DrawFrameControl
IsZoomed
GetSystemMenu
BringWindowToTop
SetCursorPos
CopyIcon
MoveWindow
DrawIcon
LoadAcceleratorsW
TranslateAcceleratorW
LoadBitmapW
UnpackDDElParam
SetWindowContextHelpId
InvalidateRgn
CharNextW
FlashWindowEx
SendMessageCallbackW
MsgWaitForMultipleObjects
AllowSetForegroundWindow
ExitWindowsEx
CloseDesktop
OpenDesktopW
SetThreadDesktop
GetThreadDesktop
SetProcessWindowStation
GetProcessWindowStation
CloseWindowStation
GetWindowDC
ClientToScreen
FillRect
GetWindowThreadProcessId
SetDlgItemTextW
CheckDlgButton
IsDlgButtonChecked
OpenWindowStationW
ReuseDDElParam
UnionRect
UpdateLayeredWindow
SetParent
MonitorFromPoint
GetComboBoxInfo
PostThreadMessageW
WaitMessage
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
IntersectRect
CopyImage
SystemParametersInfoW
GetMessageW
TranslateMessage
ShowOwnedPopups
SetCursor
DeleteMenu
RealChildWindowFromPoint
GetKeyboardState
CreateAcceleratorTableW
MsgWaitForMultipleObjectsEx
WaitForInputIdle
GetAsyncKeyState
wsprintfW
IsWindowVisible
IsClipboardFormatAvailable
MessageBeep
SetRect
TrackMouseEvent
DestroyIcon
LoadImageW
DestroyMenu
GetMenuItemInfoW
GetSysColorBrush
LoadCursorW
MapDialogRect
GetNextDlgGroupItem
SetCapture
ReleaseCapture
IsRectEmpty
DrawIconEx
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongW
SetWindowRgn
DestroyCursor
GetWindowRgn
CreateMenu
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
EnumChildWindows
GetUpdateRect
CharUpperBuffW
RegisterClipboardFormatW
ModifyMenuW
GetDoubleClickTime
PostMessageW
SetTimer
EnableWindow
SendMessageW
GetDC
GetClientRect
LoadIconW
GetFocus
SetFocus
GetWindowRect
CopyRect
InflateRect
GetSysColor
InsertMenuItemW
ShowWindow
SetWindowTextW
FrameRect
IsDialogMessageW
DrawEdge
GetWindowTextW
DrawFocusRect
SetMenuDefaultItem
LockWindowUpdate
CopyAcceleratorTableW
DestroyAcceleratorTable
InvalidateRect
ole32
CoCreateInstance
CLSIDFromString
StgCreateDocfileOnILockBytes
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
OleLockRunning
CoUninitialize
CoInitialize
RevokeDragDrop
CoInitializeSecurity
CoSetProxyBlanket
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoRevokeClassObject
CoRegisterMessageFilter
CLSIDFromProgID
OleDraw
CoGetClassObject
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
PropVariantCopy
StringFromGUID2
CoDisconnectObject
CoInitializeEx
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoCreateGuid
CreateStreamOnHGlobal
msimg32
AlphaBlend
TransparentBlt
GradientFill
comctl32
ord17
ImageList_GetIcon
ImageList_AddMasked
ImageList_GetImageCount
_TrackMouseEvent
shlwapi
PathCombineW
PathIsDirectoryW
StrFormatKBSizeW
PathStripToRootW
PathIsUNCW
PathRemoveExtensionW
PathRemoveFileSpecW
PathIsFileSpecW
PathFindFileNameW
PathFindExtensionW
PathFileExistsW
uxtheme
OpenThemeData
DrawThemeText
DrawThemeParentBackground
DrawThemeBackground
CloseThemeData
GetThemeColor
GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
IsAppThemed
GetThemeSysColor
GetThemePartSize
psapi
GetModuleFileNameExW
EnumProcessModules
GetModuleBaseNameW
EnumProcesses
oledlg
OleUIBusyW
oleacc
LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow
imm32
ImmGetContext
ImmGetOpenStatus
ImmReleaseContext
winmm
PlaySoundW
version
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
msi
ord137
ord34
ord169
ord88
ord17
ord125
ord171
ord20
ord92
ord72
ord94
ord32
ord159
ord160
ord205
ord96
ord19
ord49
ord232
ord141
ord8
ord114
ord47
ord118
ord120
ord221
ord116
ord70
gdi32
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
CreateSolidBrush
GetObjectType
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
GetClipBox
CombineRgn
GetMapMode
SetRectRgn
DPtoLP
GetTextMetricsW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
EnumFontFamiliesExW
Rectangle
GetRgnBox
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
ExcludeClipRect
ScaleWindowExtEx
Escape
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
PatBlt
CreateRectRgnIndirect
GetDeviceCaps
CreateDCW
CopyMetaFileW
CreateBitmap
SetTextColor
SetBkColor
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
GetObjectW
CreateFontW
DeleteObject
GetTextExtentPoint32W
CreateFontIndirectW
DeleteDC
winspool.drv
DeletePrinter
EnumPrintersW
AddPrinterW
FindClosePrinterChangeNotification
SetPrinterDataExW
AddPrinterDriverW
GetPrinterDriverW
XcvDataW
GetPrinterW
DeletePrinterDriverExW
GetPrinterDriverDirectoryW
EnumPrinterDriversW
SetPrinterW
SetJobW
EnumJobsW
ord204
ord203
AddMonitorW
DeleteMonitorW
EnumMonitorsW
EnumPortsW
StartDocPrinterW
StartPagePrinter
WritePrinter
EndPagePrinter
EndDocPrinter
FindFirstPrinterChangeNotification
FindNextPrinterChangeNotification
GetJobW
ClosePrinter
DocumentPropertiesW
OpenPrinterW
GetPrinterDataExW
advapi32
SetSecurityDescriptorDacl
RegQueryInfoKeyW
GetUserNameW
SetNamedSecurityInfoW
SetEntriesInAclW
FreeSid
AllocateAndInitializeSid
RegEnumValueW
RegQueryValueW
QueryServiceStatusEx
RevertToSelf
DuplicateToken
ImpersonateLoggedOnUser
ConvertStringSecurityDescriptorToSecurityDescriptorW
AdjustTokenPrivileges
LookupPrivilegeValueW
CryptReleaseContext
CryptDestroyHash
OpenProcessToken
CheckTokenMembership
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptAcquireContextW
InitializeSecurityDescriptor
BackupEventLogW
CloseEventLog
OpenEventLogW
CreateProcessAsUserW
ChangeServiceConfigW
QueryServiceConfigW
ControlService
StartServiceW
QueryServiceStatus
CloseServiceHandle
OpenServiceW
OpenSCManagerW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueExW
shell32
CommandLineToArgvW
SHGetSpecialFolderPathW
SHCreateDirectoryExW
ShellExecuteExW
SHAppBarMessage
SHBrowseForFolderW
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ShellExecuteW
ExtractIconW
SHGetFileInfoW
SHGetFolderPathW
oleaut32
OleCreateFontIndirect
SafeArrayUnaccessData
SysAllocString
SysFreeString
SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
SysStringByteLen
SysAllocStringByteLen
LoadTypeLi
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayCreate
SafeArrayDestroy
GetErrorInfo
VarBstrFromDate
VariantCopy
SafeArrayGetDim
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
wininet
InternetCloseHandle
InternetOpenW
InternetCrackUrlW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
InternetReadFile
InternetOpenUrlW
HttpSendRequestExW
HttpQueryInfoW
InternetWriteFile
HttpEndRequestW
InternetGetConnectedState
HttpAddRequestHeadersW
InternetSetStatusCallbackW
secur32
GetUserNameExW
ws2_32
getsockopt
recv
connect
socket
send
WSAStartup
listen
shutdown
select
gethostbyname
closesocket
bind
accept
__WSAFDIsSet
WSACleanup
htons
ioctlsocket
setsockopt
WSAGetLastError
inet_addr
freeaddrinfo
getaddrinfo
WSADuplicateSocketW
WSACloseEvent
WSAResetEvent
WSAEnumNetworkEvents
WSAConnect
WSAEventSelect
WSACreateEvent
WSASocketW
WSAStringToAddressW
WSAAddressToStringW
setupapi
SetupDiGetDriverInfoDetailW
SetupDiGetSelectedDriverW
SetupDiRemoveDevice
SetupDiDestroyDriverInfoList
SetupDiBuildDriverInfoList
SetupDiOpenDevRegKey
SetupDiCreateDevRegKeyW
SetupDiOpenClassRegKey
SetupDiCallClassInstaller
SetupDiSetDeviceInstallParamsW
SetupDiGetDeviceInstallParamsW
SetupDiGetDeviceInterfaceDetailW
SetupOpenInfFileW
SetupDiCreateDeviceInfoW
SetupDiOpenDeviceInfoW
SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
CMP_WaitNoPendingInstallEvents
SetupDiSetClassInstallParamsW
CM_Locate_DevNodeW
SetupDiCreateDeviceInfoList
SetupDiGetClassDevsW
CM_Disable_DevNode
SetupFindFirstLineW
SetupGetLineTextW
SetupCloseInfFile
SetupDiEnumDeviceInterfaces
CM_Get_DevNode_Registry_PropertyW
CM_Get_Device_IDW
CM_Get_DevNode_Status
CM_Set_DevNode_Registry_PropertyW
iphlpapi
IcmpCloseHandle
IcmpSendEcho
IcmpCreateFile
DeleteIPAddress
AddIPAddress
IpRenewAddress
IpReleaseAddress
GetInterfaceInfo
GetIfEntry
GetAdaptersAddresses
GetAdaptersInfo
NotifyAddrChange
crypt32
CertDeleteCertificateFromStore
CertCloseStore
CertAddEncodedCertificateToStore
CertOpenStore
CryptUnprotectData
Sections
.text Size: 2.6MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 832KB - Virtual size: 832KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 47KB - Virtual size: 95KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.gfids Size: 112KB - Virtual size: 112KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.giats Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 29.5MB - Virtual size: 29.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 792KB - Virtual size: 796KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE